Rename Dilithium to ML-DSA #1
Conversation
There was a problem hiding this comment.
We used "cryptosuite": "experimental-mldsa44-2024" in the VC. I guess it's desirable to specify which flavor of the algo we're using, as later we may implement different flavors, with format differences... but I'm happy both ways. My comment applies to the whole html, not just related to my 2 comments.
| @@ -457,20 +465,20 @@ <h4>DataIntegrityProof</h4> | |||
| </p> | |||
| <p> | |||
| The `cryptosuite` property of the proof MUST be | |||
| `experimental-quantum-safe-dilithium-2024`. | |||
| `experimental-ml-dsa-2024`. | |||
There was a problem hiding this comment.
we used "experimental-mldsa44-2024" as ml-dsa-44 is the only algo we implemented so far
index.html
Outdated
| @@ -480,7 +488,7 @@ <h4>DataIntegrityProof</h4> | |||
| "myWebsite": "https://hello.world.example/", | |||
| "proof": { | |||
| "type": "DataIntegrityProof", | |||
| "cryptosuite": "experimental-quantum-safe-dilithium-2024", | |||
| "cryptosuite": "experimental-mldsa-2024", | |||
index.html
Outdated
| [[VC-DATA-INTEGRITY]] produced using Dilithium cryptographic key material | ||
| that is compliant with <span class="issue">cite Dilithium spec</span>. | ||
| [[VC-DATA-INTEGRITY]] produced using ML-DSA-44 cryptographic key material | ||
| that is compliant with <span class="issue">cite ML-DSA spec - I belive this is FIPS-204</span>. |
There was a problem hiding this comment.
Yes, it's FIPS-204.
| that is compliant with <span class="issue">cite ML-DSA spec - I belive this is FIPS-204</span>. | |
| that is compliant with the [[[FIPS-204]]]. |
index.html
Outdated
| expression of a Dilithium public key. | ||
| <span class="issue">Specify acceptable Dilithium key sizes</span> | ||
| expression of a ML-DSA public key. | ||
| <span class="issue">Specify acceptable ML-DSA key sizes</span> |
There was a problem hiding this comment.
ML-DSA-44 public key size is 1312 bytes, private key size is 2528 bytes.
There was a problem hiding this comment.
Great, these values are already there. Removing this issue
| </p> | ||
|
|
||
| <p> | ||
| The Multikey encoding of a Dilithium public key MUST start with the two-byte | ||
| The Multikey encoding of a ML-DSA public key MUST start with the two-byte | ||
| prefix `0x8724` (the varint expression of `0x1207`) followed by the 1312-byte |
There was a problem hiding this comment.
Reminder that we /really/ need to register these values here: https://github.com/multiformats/multicodec/blob/master/table.csv#L168
There was a problem hiding this comment.
I raised an issue to track this: #2
index.html
Outdated
| signature produced according to using the algorithms specified in section | ||
| [[[#algorithms]]], encoded according | ||
| to ??? encoded using the base-64-url-nopad header and | ||
| to <span class="issue">What is the encoding?</span>??? encoded using the base-64-url-nopad header and |
There was a problem hiding this comment.
Encoding is whatever is in FIPS-204.
There was a problem hiding this comment.
My understanding is we would use the pkEncode function to repsent the keys as bytes following FIPS-204 then encode those bytes in some manner.
I think we should use multibase as thats what the other data integrity specs use. Whether base58-btc or base64 I don't know, I think I prefer base58
There was a problem hiding this comment.
I guess it is already using multibase actually
index.html
Outdated
| @@ -898,7 +906,7 @@ <h4>Proof Serialization (experimental-dilithium-quantum-safe-2024)</h4> | |||
| |options|.|verificationMethod| value. | |||
| </li> | |||
| <li> | |||
| Let |proofBytes| be the result of applying the Dilithium-2 | |||
| Let |proofBytes| be the result of applying the ML_DSA_44 | |||
| Signature Algorithm [???REF???], with |hashData| as the data | |||
There was a problem hiding this comment.
I think I included the FIPS in the references, but I couldnt figure out how to ref it properly. Or maybe I didn't include it in the list right. Taking another look ...
|
I will try address the comments :) |
index.html
Outdated
| private key). | ||
| </p> | ||
| <p> | ||
| The encoding of a Dilithium=2 secret key MUST start with the two-byte prefix | ||
| The encoding of a <span class="issue">What should this be now we have moved to ML-DSA</span>ML-DSA=44 secret key MUST start with the two-byte prefix |
Co-authored-by: David I. Lehn <[email protected]>
Co-authored-by: David I. Lehn <[email protected]>
|
Okay, I think this is good to go. Can I merge? |
Yes from me :-) |
I have removed all references to dilithium. Using ML-DSA-44 or experimental-mldsa-2024 where appropriate.
I am not sure what this means for the current examples, I assume they would have to change.
I also attempted to add a reference to the FIPS paper, which I think specifies this ML-DSA algorithm. But I definitely didn't do this correctly.
It is a start :)
Preview | Diff